Skip to content
devops

Distroless

Distroless Container Images

Definition

Distroless container images contain only the application and its runtime dependencies — no package manager, shell, or OS utilities. Pioneered by Google, they reduce image size and dramatically shrink the attack surface by removing tools that attackers could use to escalate privileges or move laterally.

Distroless images are commonly used in multi-stage Docker builds.

Related Terms

Alpine
Alpine Linux
Multi-Stage Build
Multi-Stage Docker Build
Container Image
Container Image
Docker
Docker
← Back to Glossary

Ship secure code faster

Crash Override integrates security into the developer workflow. No context switching, no waiting on reviews.

Talk to a Human See the Product